Maybe that says something about MS's program if 40 others missed it
It needs to be taken into account that the version of
VCD has been out for over a month with zero issues. So, no, I don't consider
Microsoft as having picked up something someone else missed where everyone made a mistake. Apparently,
Microsoft is more zealous when it comes to some detections/warnings. Neither
Windows Defender or
ESET bat an eyelash at this file. A host of other programs also don't decide to negatively view the file.
Regardless, looking at what
OpenCandy really is isn't a bad thing either. Refer to the official website and the
FAQ for it.
Q: What is OpenCandy?
A: OpenCandy runs a moderated recommendation network that enables software developers to recommend other software during installation of their application they believe will be valuable to their users. We were started by a passionate group of people who were determined to help users discover software and change the way software developers make money and reach new users. That’s why OpenCandy-powered recommendations are clearly labeled and why we allow only the best software into our network.
It pretty much becomes inert after installation of the software that uses it is installed. It merely offers you the option to install something else but with
OpenCandy the default setting is to
not install the recommended product which is great for people who never pay attention to what buttons they are pressing during software installation. Many programs that I use which have pages hosted on
SourceForge.net make use of
OpenCandy in their installers.
It's cool that
Microsoft warns you of this file, I guess, but
OpenCandy, itself, is not nefarious and in this particular case it isn't even being used. So, yes, an
OpenCandy file is present but it isn't doing anything and poses no actual problem for those receiving warnings.